Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                

Admin PHP

Download as txt, pdf, or txt
Download as txt, pdf, or txt
You are on page 1of 28
At a glance
Powered by AI
The code appears to be a PHP script that attempts to find and verify admin pages on a target website. It takes a URL as input and checks it for various admin page paths.

The code takes a target URL as input and attempts to find admin pages on the site by checking for default paths and filenames. It maintains a list of common admin paths and iterates through them to make requests and check if they return a 200 response or match a 404 string if provided.

The code splits the list of paths into those that are direct paths and those that require a subdomain check. It loops through each, makes a request, and displays any paths that return a 200 response. It keeps a count of the number verified and displays any found paths.

<?

php set_time_limit(0); error_reporting(0); $list['front'] ="admin adm admincp admcp cp modcp moderatorcp adminare admins cpanel controlpanel"; $list['end'] = "admin1.php admin1.html admin2.php admin2.html yonetim.php yonetim.html yonetici.php yonetici.html ccms/ ccms/login.php ccms/index.php maintenance/ webmaster/ adm/ configuration/ configure/ websvn/ admin/ admin/account.php admin/account.html admin/index.php admin/index.html admin/login.php admin/login.html admin/home.php admin/controlpanel.html admin/controlpanel.php admin.php admin.html admin/cp.php admin/cp.html cp.php cp.html administrator/ administrator/index.html administrator/index.php administrator/login.html administrator/login.php administrator/account.html administrator/account.php administrator.php administrator.html login.php login.html modelsearch/login.php moderator.php

moderator.html moderator/login.php moderator/login.html moderator/admin.php moderator/admin.html moderator/ account.php account.html controlpanel/ controlpanel.php controlpanel.html admincontrol.php admincontrol.html adminpanel.php adminpanel.html admin1.asp admin2.asp yonetim.asp yonetici.asp admin/account.asp admin/index.asp admin/login.asp admin/home.asp admin/controlpanel.asp admin.asp admin/cp.asp cp.asp administrator/index.asp administrator/login.asp administrator/account.asp administrator.asp login.asp modelsearch/login.asp moderator.asp moderator/login.asp moderator/admin.asp account.asp controlpanel.asp admincontrol.asp adminpanel.asp fileadmin/ fileadmin.php fileadmin.asp fileadmin.html administration/ administration.php administration.html sysadmin.php sysadmin.html phpmyadmin/ myadmin/ sysadmin.asp sysadmin/ ur-admin.asp ur-admin.php ur-admin.html ur-admin/ Server.php Server.html Server.asp

Server/ wp-admin/ administr8.php administr8.html administr8/ administr8.asp webadmin/ webadmin.php webadmin.asp webadmin.html administratie/ admins/ admins.php admins.asp admins.html administrivia/ Database_Administration/ WebAdmin/ useradmin/ sysadmins/ admin1/ system-administration/ administrators/ pgadmin/ directadmin/ staradmin/ ServerAdministrator/ SysAdmin/ administer/ LiveUser_Admin/ sys-admin/ typo3/ panel/ cpanel/ cPanel/ cpanel_file/ platz_login/ rcLogin/ blogindex/ formslogin/ autologin/ support_login/ meta_login/ manuallogin/ simpleLogin/ loginflat/ utility_login/ showlogin/ memlogin/ members/ login-redirect/ sub-login/ wp-login/ login1/ dir-login/ login_db/ xlogin/ smblogin/ customer_login/ UserLogin/

login-us/ acct_login/ admin_area/ bigadmin/ project-admins/ phppgadmin/ pureadmin/ sql-admin/ radmind/ openvpnadmin/ wizmysqladmin/ vadmind/ ezsqliteadmin/ hpwebjetadmin/ newsadmin/ adminpro/ Lotus_Domino_Admin/ bbadmin/ vmailadmin/ Indy_admin/ ccp14admin/ irc-macadmin/ banneradmin/ sshadmin/ phpldapadmin/ macadmin/ administratoraccounts/ admin4_account/ admin4_colon/ radmind-1/ Super-Admin/ AdminTools/ cmsadmin/ SysAdmin2/ globes_admin/ cadmins/ phpSQLiteAdmin/ navSiteAdmin/ server_admin_small/ logo_sysadmin/ server/ database_administration/ power_user/ system_administration/ ss_vms_admin_sm/ adminarea/ bb-admin/ adminLogin/ panel-administracion/ instadmin/ memberadmin/ administratorlogin/ admin/admin.php admin_area/admin.php admin_area/login.php siteadmin/login.php siteadmin/index.php siteadmin/login.html admin/admin.html admin_area/index.php

bb-admin/index.php bb-admin/login.php bb-admin/admin.php admin_area/login.html admin_area/index.html admincp/index.asp admincp/login.asp admincp/index.html webadmin/index.html webadmin/admin.html webadmin/login.html admin/admin_login.html admin_login.html panel-administracion/login.html nsw/admin/login.php webadmin/login.php admin/admin_login.php admin_login.php admin_area/admin.html pages/admin/admin-login.php admin/admin-login.php admin-login.php bb-admin/index.html bb-admin/login.html bb-admin/admin.html admin/home.html pages/admin/admin-login.html admin/admin-login.html admin-login.html admin/adminLogin.html adminLogin.html home.html admin.%EXT% login.htm login.html login/ login.%EXT% adm/ admin/ admin/account.html admin/login.html admin/login.htm admin/home.%EXT% admin/controlpanel.html admin/controlpanel.htm admin/cp.%EXT% admin/adminLogin.html admin/adminLogin.htm admin/admin_login.%EXT% admin/controlpanel.%EXT% admin/admin-login.%EXT% admin-login.%EXT% admin/account.%EXT% admin/admin.%EXT% admin.htm admin.html adminitem/ adminitem.%EXT% adminitems/ adminitems.%EXT%

administrator/ administrator/login.%EXT% administrator.%EXT% administration/ administration.%EXT% adminLogin/ adminlogin.%EXT% admin_area/admin.%EXT% admin_area/ admin_area/login.%EXT% manager/ manager.%EXT% letmein/ letmein.%EXT% superuser/ superuser.%EXT% access/ access.%EXT% sysadm/ sysadm.%EXT% superman/ supervisor/ panel.%EXT% control/ control.%EXT% member/ member.%EXT% members/ members.%EXT% user/ user.%EXT% cp/ uvpanel/ manage/ manage.%EXT% management/ management.%EXT% signin/ signin.%EXT% log-in/ log-in.%EXT% log_in/ log_in.%EXT% sign_in/ sign_in.%EXT% sign-in/ sign-in.%EXT% users/ users.%EXT% accounts/ accounts.%EXT% wp-login.php bb-admin/login.%EXT% bb-admin/admin.%EXT% bb-admin/admin.html administrator/account.%EXT% relogin.htm relogin.html check.%EXT% relogin.%EXT%

blog/wp-login.%EXT% user/admin.%EXT% users/admin.%EXT% registration/ processlogin.%EXT% checklogin.%EXT% checkuser.%EXT% checkadmin.%EXT% isadmin.%EXT% authenticate.%EXT% authentication.%EXT% auth.%EXT% authuser.%EXT% authadmin.%EXT% cp.%EXT% modelsearch/login.%EXT% moderator.%EXT% moderator/ controlpanel/ controlpanel.%EXT% admincontrol.%EXT% adminpanel.%EXT% fileadmin/ fileadmin.%EXT% sysadmin.%EXT% admin1.%EXT% admin1.html admin1.htm admin2.%EXT% admin2.html yonetim.%EXT% yonetim.html yonetici.%EXT% yonetici.html phpmyadmin/ myadmin/ ur-admin.%EXT% ur-admin/ Server.%EXT% Server/ wp-admin/ administr8.%EXT% administr8/ webadmin/ webadmin.%EXT% administratie/ admins/ admins.%EXT% administrivia/ Database_Administration/ useradmin/ sysadmins/ admin1/ system-administration/ administrators/ pgadmin/ directadmin/ staradmin/ ServerAdministrator/ SysAdmin/

administer/ LiveUser_Admin/ sys-admin/ typo3/ panel/ cpanel/ cpanel_file/ platz_login/ rcLogin/ blogindex/ formslogin/ autologin/ support_login/ meta_login/ manuallogin/ simpleLogin/ loginflat/ utility_login/ showlogin/ memlogin/ login-redirect/ sub-login/ wp-login/ login1/ dir-login/ login_db/ xlogin/ smblogin/ customer_login/ UserLogin/ login-us/ acct_login/ bigadmin/ project-admins/ phppgadmin/ pureadmin/ sql-admin/ radmind/ openvpnadmin/ wizmysqladmin/ vadmind/ ezsqliteadmin/ hpwebjetadmin/ newsadmin/ adminpro/ Lotus_Domino_Admin/ bbadmin/ vmailadmin/ Indy_admin/ ccp14admin/ irc-macadmin/ banneradmin/ sshadmin/ phpldapadmin/ macadmin/ administratoraccounts/ admin4_account/ admin4_colon/ radmind-1/ Super-Admin/

AdminTools/ cmsadmin/ SysAdmin2/ globes_admin/ cadmins/ phpSQLiteAdmin/ navSiteAdmin/ server_admin_small/ logo_sysadmin/ power_user/ system_administration/ ss_vms_admin_sm/ bb-admin/ panel-administracion/ instadmin/ memberadmin/ administratorlogin/ adm.%EXT% admin_login.%EXT% panel-administracion/login.%EXT% pages/admin/admin-login.%EXT% pages/admin/ acceso.%EXT% admincp/login.%EXT% admincp/ adminarea/ admincontrol/ affiliate.%EXT% adm_auth.%EXT% memberadmin.%EXT% administratorlogin.%EXT% modules/admin/ administrators.%EXT% siteadmin/ siteadmin.%EXT% adminsite/ kpanel/ vorod/ vorod.%EXT% vorud/ vorud.%EXT% adminpanel/ PSUser/ secure/ webmaster/ webmaster.%EXT% autologin.%EXT% userlogin.%EXT% admin_area.%EXT% cmsadmin.%EXT% security/ usr/ root/ secret/ admin/login.%EXT% admin/adminLogin.%EXT% moderator.php moderator.html moderator/login.%EXT% moderator/admin.%EXT%

yonetici.%EXT% 0admin/ 0manager/ aadmin/ cgi-bin/login%EXT% login1%EXT% login_admin/ login_admin%EXT% login_out/ login_out%EXT% login_user%EXT% loginerror/ loginok/ loginsave/ loginsuper/ loginsuper%EXT% login%EXT% logout/ logout%EXT% secrets/ super1/ super1%EXT% super_index%EXT% super_login%EXT% supermanager%EXT% superman%EXT% superuser%EXT% supervise/ supervise/Login%EXT% super%EXT% admin adm admincp admcp cp modcp moderatorcp adminare admins cpanel controlpanel admin1.php admin1.html admin2.php admin2.html yonetim.php yonetim.html yonetici.php yonetici.html ccms/ ccms/login.php ccms/index.php maintenance/ webmaster/ adm/ configuration/ configure/ websvn/ admin/ admin/account.php

admin/account.html admin/index.php admin/index.html admin/login.php admin/login.html admin/home.php admin/controlpanel.html admin/controlpanel.php admin.php admin.html admin/cp.php admin/cp.html cp.php cp.html administrator/ administrator/index.html administrator/index.php administrator/login.html administrator/login.php administrator/account.html administrator/account.php administrator.php administrator.html login.php login.html modelsearch/login.php moderator.php moderator.html moderator/login.php moderator/login.html moderator/admin.php moderator/admin.html moderator/ account.php account.html controlpanel/ controlpanel.php controlpanel.html admincontrol.php admincontrol.html adminpanel.php adminpanel.html admin1.asp admin2.asp yonetim.asp yonetici.asp admin/account.asp admin/index.asp admin/login.asp admin/home.asp admin/controlpanel.asp admin.asp admin/cp.asp cp.asp administrator/index.asp administrator/login.asp administrator/account.asp administrator.asp login.asp modelsearch/login.asp

moderator.asp moderator/login.asp moderator/admin.asp account.asp controlpanel.asp admincontrol.asp adminpanel.asp fileadmin/ fileadmin.php fileadmin.asp fileadmin.html administration/ administration.php administration.html sysadmin.php sysadmin.html phpmyadmin/ myadmin/ sysadmin.asp sysadmin/ ur-admin.asp ur-admin.php ur-admin.html ur-admin/ Server.php Server.html Server.asp Server/ wp-admin/ administr8.php administr8.html administr8/ administr8.asp webadmin/ webadmin.php webadmin.asp webadmin.html administratie/ admins/ admins.php admins.asp admins.html administrivia/ Database_Administration/ WebAdmin/ useradmin/ sysadmins/ admin1/ system-administration/ administrators/ pgadmin/ directadmin/ staradmin/ ServerAdministrator/ SysAdmin/ administer/ LiveUser_Admin/ sys-admin/ typo3/ panel/

cpanel/ cPanel/ cpanel_file/ platz_login/ rcLogin/ blogindex/ formslogin/ autologin/ support_login/ meta_login/ manuallogin/ simpleLogin/ loginflat/ utility_login/ showlogin/ memlogin/ members/ login-redirect/ sub-login/ wp-login/ login1/ dir-login/ login_db/ xlogin/ smblogin/ customer_login/ UserLogin/ login-us/ acct_login/ admin_area/ bigadmin/ project-admins/ phppgadmin/ pureadmin/ sql-admin/ radmind/ openvpnadmin/ wizmysqladmin/ vadmind/ ezsqliteadmin/ hpwebjetadmin/ newsadmin/ adminpro/ Lotus_Domino_Admin/ bbadmin/ vmailadmin/ Indy_admin/ ccp14admin/ irc-macadmin/ banneradmin/ sshadmin/ phpldapadmin/ macadmin/ administratoraccounts/ admin4_account/ admin4_colon/ radmind-1/ Super-Admin/ AdminTools/ cmsadmin/

SysAdmin2/ globes_admin/ cadmins/ phpSQLiteAdmin/ navSiteAdmin/ server_admin_small/ logo_sysadmin/ server/ database_administration/ power_user/ system_administration/ ss_vms_admin_sm/ adminarea/ bb-admin/ adminLogin/ panel-administracion/ instadmin/ memberadmin/ administratorlogin/ admin/admin.php admin_area/admin.php admin_area/login.php siteadmin/login.php siteadmin/index.php siteadmin/login.html admin/admin.html admin_area/index.php bb-admin/index.php bb-admin/login.php bb-admin/admin.php admin_area/login.html admin_area/index.html admincp/index.asp admincp/login.asp admincp/index.html webadmin/index.html webadmin/admin.html webadmin/login.html admin/admin_login.html admin_login.html panel-administracion/login.html nsw/admin/login.php webadmin/login.php admin/admin_login.php admin_login.php admin_area/admin.html pages/admin/admin-login.php admin/admin-login.php admin-login.php bb-admin/index.html bb-admin/login.html bb-admin/admin.html admin/home.html pages/admin/admin-login.html admin/admin-login.html admin-login.html admin/adminLogin.html adminLogin.html home.html rcjakar/admin/login.php

adminarea/index.html adminarea/admin.html webadmin/index.php webadmin/admin.php user.html modelsearch/login.html adminarea/login.html panel-administracion/index.html panel-administracion/admin.html modelsearch/index.html modelsearch/admin.html admincontrol/login.html adm/index.html adm.html user.php panel-administracion/login.php wp-login.php adminLogin.php admin/adminLogin.php home.php adminarea/index.php adminarea/admin.php adminarea/login.php panel-administracion/index.php panel-administracion/admin.php modelsearch/index.php modelsearch/admin.php admincontrol/login.php adm/admloginuser.php admloginuser.php admin2/login.php admin2/index.php adm/index.php adm.php affiliate.php adm_auth.php memberadmin.php administratorlogin.php admin/admin.asp admin_area/admin.asp admin_area/login.asp admin_area/index.asp bb-admin/index.asp bb-admin/login.asp bb-admin/admin.asp pages/admin/admin-login.asp admin/admin-login.asp admin-login.asp user.asp webadmin/index.asp webadmin/admin.asp webadmin/login.asp admin/admin_login.asp admin_login.asp panel-administracion/login.asp adminLogin.asp admin/adminLogin.asp home.asp adminarea/index.asp adminarea/admin.asp

adminarea/login.asp panel-administracion/index.asp panel-administracion/admin.asp modelsearch/index.asp modelsearch/admin.asp admincontrol/login.asp adm/admloginuser.asp admloginuser.asp admin2/login.asp admin2/index.asp adm/index.asp adm.asp affiliate.asp adm_auth.asp memberadmin.asp administratorlogin.asp siteadmin/login.asp siteadmin/index.asp ADMIN/ paneldecontrol/ login/ cms/ admon/ ADMON/ administrador/ ADMIN/login.php panelc/ ADMIN/login.html admin. login.htm login. admin/login.htm admin/home. admin/controlpanel.htm admin/cp. admin/adminLogin.htm admin/admin_login. admin/controlpanel. admin/admin-login. admin-login. admin/account. admin/admin. admin.htm adminitem/ adminitem. adminitems/ adminitems. administrator/login. administrator. administration. adminlogin. admin_area/admin. admin_area/login. manager/ manager. letmein/ letmein. superuser/ superuser. access/

access. sysadm/ sysadm. superman/ supervisor/ panel. control/ control. member/ member. members. user/ user. cp/ uvpanel/ manage/ manage. management/ management. signin/ signin. log-in/ log-in. log_in/ log_in. sign_in/ sign_in. sign-in/ sign-in. users/ users. accounts/ accounts. bb-admin/login. bb-admin/admin. administrator/account. relogin.htm relogin.html check. relogin. blog/wp-login. user/admin. users/admin. registration/ processlogin. checklogin. checkuser. checkadmin. isadmin. authenticate. authentication. auth. authuser. authadmin. cp. modelsearch/login. moderator. controlpanel. admincontrol. adminpanel.

fileadmin. sysadmin. admin1. admin1.htm admin2. yonetim. yonetici. ur-admin. Server. administr8. webadmin. admins. adm. admin_login. panel-administracion/login. pages/admin/admin-login. pages/admin/ acceso. admincp/login. admincp/ admincontrol/ affiliate. adm_auth. memberadmin. administratorlogin. modules/admin/ administrators. siteadmin/ siteadmin. adminsite/ kpanel/ vorod/ vorod. vorud/ vorud. adminpanel/ PSUser/ secure/ webmaster. autologin. userlogin. admin_area. cmsadmin. security/ usr/ root/ secret/ admin/login. admin/adminLogin. moderator/login. moderator/admin. 0admin/ 0manager/ aadmin/ cgi-bin/login login1 login_admin/ login_admin login_out/ login_out

login_user loginerror/ loginok/ loginsave/ loginsuper/ loginsuper login logout/ logout secrets/ super1/ super1 super_index super_login supermanager superman superuser supervise/ supervise/Login super admin.%EXT% login.%EXT% login/ adm/ admin/ admincp/ modcp/ administrator.php/ moderator.php/ cms/ admin/account.%EXT% admin/login.%EXT% admin/home.%EXT% admin/controlpanel.%EXT% admin/cp.%EXT% admin/adminLogin.%EXT% admin/admin_login.%EXT% admin/admin-login.%EXT% admin-login.%EXT% admin/admin.%EXT% adminitem/ adminitem.%EXT% adminitems/ adminitems.%EXT% administrator/ administrator/login.%EXT% administrator.%EXT% administration/ administration.%EXT% adminLogin/ adminlogin.%EXT% admin_area/admin.%EXT% admin_area/ admin_area/login.%EXT% manager/ manager.%EXT% letmein/ letmein.%EXT% superuser/ superuser.%EXT%

access/ access.%EXT% sysadm/ sysadm.%EXT% superman/ supervisor/ panel.%EXT% control/ control.%EXT% member/ member.%EXT% members/ members.%EXT% user/ user.%EXT% cp/ uvpanel/ manage/ manage.%EXT% management/ management.%EXT% signin/ signin.%EXT% log-in/ log-in.%EXT% log_in/ log_in.%EXT% sign_in/ sign_in.%EXT% sign-in/ sign-in.%EXT% users/ users.%EXT% accounts/ accounts.%EXT% wp-login.php bb-admin/login.%EXT% bb-admin/admin.%EXT% administrator/account.%EXT% relogin.%EXT% check.%EXT% blog/wp-login.%EXT% user/admin.%EXT% users/admin.%EXT% registration/ processlogin.%EXT% checklogin.%EXT% checkuser.%EXT% checkadmin.%EXT% isadmin.%EXT% authenticate.%EXT% authentication.%EXT% auth.%EXT% authuser.%EXT% authadmin.%EXT% cp.%EXT% modelsearch/login.%EXT% moderator.%EXT% moderator/ controlpanel/

controlpanel.%EXT% admincontrol.%EXT% adminpanel.%EXT% fileadmin/ fileadmin.%EXT% sysadmin.%EXT% admin1.%EXT% admin2.%EXT% yonetim.%EXT% yonetici.%EXT% phpmyadmin/ myadmin/ ur-admin.%EXT% ur-admin/ Server.%EXT% Server/ wp-admin/ administr8.%EXT% administr8/ webadmin/ webadmin.%EXT% administratie/ admins/ admins.%EXT% administrivia/ Database_Administration/ useradmin/ sysadmins/ admin1/ system-administration/ administrators/ pgadmin/ directadmin/ staradmin/ ServerAdministrator/ SysAdmin/ administer/ LiveUser_Admin/ sys-admin/ typo3/ panel/ cpanel/ cpanel_file/ platz_login/ rcLogin/ blogindex/ formslogin/ autologin/ support_login/ meta_login/ manuallogin/ simpleLogin/ loginflat/ utility_login/ showlogin/ memlogin/ login-redirect/ sub-login/ wp-login/ login1/

dir-login/ login_db/ xlogin/ smblogin/ customer_login/ UserLogin/ login-us/ acct_login/ bigadmin/ project-admins/ phppgadmin/ pureadmin/ sql-admin/ radmind/ openvpnadmin/ wizmysqladmin/ vadmind/ ezsqliteadmin/ hpwebjetadmin/ newsadmin/ adminpro/ Lotus_Domino_Admin/ bbadmin/ vmailadmin/ Indy_admin/ ccp14admin/ irc-macadmin/ banneradmin/ sshadmin/ phpldapadmin/ macadmin/ administratoraccounts/ admin4_account/ admin4_colon/ radmind-1/ Super-Admin/ AdminTools/ cmsadmin/ SysAdmin2/ globes_admin/ cadmins/ phpSQLiteAdmin/ navSiteAdmin/ server_admin_small/ logo_sysadmin/ power_user/ system_administration/ ss_vms_admin_sm/ bb-admin/ panel-administracion/ instadmin/ memberadmin/ administratorlogin/ adm.%EXT% admin_login.%EXT% panel-administracion/login.%EXT% pages/admin/admin-login.%EXT% pages/admin/ acceso.%EXT% admincp/login.%EXT%

adminarea/ admincontrol/ affiliate.%EXT% adm_auth.%EXT% memberadmin.%EXT% administratorlogin.%EXT% modules/admin/ administrators.%EXT% siteadmin/ siteadmin.%EXT% adminsite/ kpanel/ vorod/ vorod.%EXT% vorud/ vorud.%EXT% adminpanel/ PSUser/ secure/ webmaster/ webmaster.%EXT% autologin.%EXT% userlogin.%EXT% admin_area.%EXT% cmsadmin.%EXT% security/ usr/ root/ secret/ moderator/login.%EXT% moderator/admin.%EXT% 0admin/ 0manager/ aadmin/ cgi-bin/login%EXT% login1%EXT% login_admin/ login_admin%EXT% login_out/ login_out%EXT% login_user%EXT% loginerror/ loginok/ loginsave/ loginsuper/ loginsuper%EXT% login%EXT% logout/ logout%EXT% secrets/ super1/ super1%EXT% super_index%EXT% super_login%EXT% supermanager%EXT% superman%EXT% superuser%EXT% supervise/ supervise/Login%EXT% super%EXT%

rcjakar/admin/login.php adminarea/index.html adminarea/admin.html webadmin/index.php webadmin/admin.php user.html modelsearch/login.html adminarea/login.html panel-administracion/index.html panel-administracion/admin.html modelsearch/index.html modelsearch/admin.html admincontrol/login.html adm/index.html adm.html user.php panel-administracion/login.php wp-login.php adminLogin.php admin/adminLogin.php home.php adminarea/index.php adminarea/admin.php adminarea/login.php panel-administracion/index.php panel-administracion/admin.php modelsearch/index.php modelsearch/admin.php admincontrol/login.php adm/admloginuser.php admloginuser.php admin2/login.php admin2/index.php adm/index.php adm.php affiliate.php adm_auth.php memberadmin.php administratorlogin.php admin/admin.asp admin_area/admin.asp admin_area/login.asp admin_area/index.asp bb-admin/index.asp bb-admin/login.asp bb-admin/admin.asp pages/admin/admin-login.asp admin/admin-login.asp admin-login.asp user.asp webadmin/index.asp webadmin/admin.asp webadmin/login.asp admin/admin_login.asp admin_login.asp panel-administracion/login.asp adminLogin.asp admin/adminLogin.asp home.asp adminarea/index.asp

adminarea/admin.asp adminarea/login.asp panel-administracion/index.asp panel-administracion/admin.asp modelsearch/index.asp modelsearch/admin.asp admincontrol/login.asp adm/admloginuser.asp admloginuser.asp admin2/login.asp admin2/index.asp adm/index.asp adm.asp affiliate.asp adm_auth.asp memberadmin.asp administratorlogin.asp siteadmin/login.asp siteadmin/index.asp ADMIN/ paneldecontrol/ login/ cms/ admon/ ADMON/ administrador/ ADMIN/login.php panelc/ ADMIN/login.html"; function template() { echo ' <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.or g/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta **********="Content-Type" *********"text/html; charset=utf-8" /> <title>Online Admin Finder by ebin</title><center><p align="center"><b><font fac e="Trebuchet MS" color="Green"><img src="http://i1093.photobucket.com/albums/i43 0/ebinvthomas/ebinindishellhacker.png" style="width: 241px; height: 125px;" bord er="0"/><br>Online Admin panel Finder <br> <style type="text/css"> h1.technique-two { width: 795px; height: 120px; background: url() no-repeat top center; margin: 0 auto; } body{ background: #070707; margin: 0; padding: 0; padding-top: 10px; color: #FFF; font-family: Calibri; font-size: 13px; } a{ color: #FFF; text-decoration: none; font-weight: bold;

} .wrapper{ width: 1000px; margin: 0 auto; } .tube{ padding: 10px; } .red{ width: 998px; border: 1px solid #e52224; background: #191919; color: #e52224 } .red input{ background: #000; border: 1px solid #e52224; color: #FFF; } .blue{ float: left; width: 1000px; border: 1px solid #1d7fc3; background: #191919; color: #1d7fc3; } .green{ float: left; width: 1000px; border: 1px solid #5fd419; background: #191919; color: #5fd419; } </style> <script type="text/javascript"> <!-function insertcode($text, $place, $replace) { var $this = $text; var logbox = document.getElementById($place); if($replace == 0) document.getElementById($place).innerHTML = logbox.innerHTML+$this; else document.getElementById($place).innerHTML = $this; //document.getElementById("helpbox").innerHTML = $this; } --> </script> </head> <body> <br /> <br /> <h1 class="technique-two">

</h1> <div class="wrapper"> <div class="red">

<div class="tube"> <form action="" method="post" name="xploit_form"> URL:<br /><input type="text" name="xploit_url" value="'.$_POST['xploit_url'].'" style="width: 100%;" /><br /><br /> 404string:<br /><input type="text" name="xploit_404string" value="'.$_POST['xplo it_404string'].'" style="width: 100%;" /><br /><br /> <span style="float: right;"><input type="submit" name="xploit_submit" value="go for it" align="right" /></span> </form> <br /> </div> <!-- /tube --> </div> <!-- /red --> <br /> <div class="green"> <div class="tube" id="rightcol"> Verificat: <span id="verified">0</span> / <span id="total">0</span><br /> Found ones:<br /> </div> <!-- /tube --> </div> <!-- /green --> <br clear="all" /><br /> <div class="blue"> <div class="tube" id="logbox"> <br /> <br /> Admin page Finder <br /><br /> </div> <!-- /tube --> </div> <!-- /blue --> </div> <!-- /wrapper --> <br clear="all">'; } function show($msg, $br=1, $stop=0, $place='logbox', $replace=0) { if($br == 1) $msg .= "<br />"; echo "<script type=\"text/javascript\">insertcode('".$msg."', '".$place."', '".$replace."');</script>"; if($stop == 1) exit; @flush();@ob_flush(); } function check($x, $front=0) { global $_POST,$site,$false; if($front == 0) $t = $site.$x; else $t = 'http://'.$x.'.'.$site.'/'; $headers = get_headers($t); if (!eregi('200', $headers[0])) return 0; $data = @file_get_contents($t); if($_POST['xploit_404string'] == "") if($data == $false) return 0; if($_POST['xploit_404string'] != "") if(strpos($data, $_POST['xploit_404stri ng'])) return 0; return 1; } // -----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------template(); if(!isset($_POST['xploit_url'])) die; if($_POST['xploit_url'] == '') die; $site = $_POST['xploit_url']; if ($site[strlen($site)-1] != "/") $site .= "/"; if($_POST['xploit_404string'] == "") $false = @file_get_contents($site."d65897f5 380a21a42db94b3927b823d56ee1099a-this_can-t_exist.html");

$list['end'] = str_replace("\r", "", $list['end']); $list['front'] = str_replace("\r", "", $list['front']); $pathes = explode("\n", $list['end']); $frontpathes = explode("\n", $list['front']); show(count($pathes)+count($frontpathes), 1, 0, 'total', 1); $verificate = 0; foreach($pathes as $path) { show('Checking '.$site.$path.' : ', 0, 0, 'logbox', 0); $verificate++; show($verificate, 0, 0, 'verified', 1); if(check($path) == 0) show('not found', 1, 0, 'logbox', 0); else{ show('<span style="color: #00FF00;"><strong>found</strong></span>', 1, 0 , 'logbox', 0); show('<a href="'.$site.$path.'">'.$site.$path.'</a>', 1, 0, 'rightcol', 0); } } preg_match("/\/\/(.*?)\//i", $site, $xx); $site = $xx[1]; if(substr($site, 0, 3) == "www") $site = substr($site, 4); foreach($frontpathes as $frontpath) { show('Checking http://'.$frontpath.'.'.$site.'/ : ', 0, 0, 'logbox', 0); $verificate++; show($verificate, 0, 0, 'verified', 1); if(check($frontpath, 1) == 0) show('not found', 1, 0, 'logbox', 0); else{ show('<span style="color: #00FF00;"><strong>found</strong></span>', 1, 0 , 'logbox', 0); show('<a href="http://'.$frontpath.'.'.$site.'/">'.$frontpath.'.'.$site. '</a>', 1, 0, 'rightcol', 0); } } ?>

You might also like